Appl. No. 10/813,248 

Amdt. dated June 29, 2011 

Reply to Office Action of March 30, 2011 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1. (Currently Amended) In a computing device, a method for protecting sensitive files from 
unauthorized access, comprising: 

detecting a connection of the computing device to an electronic device; 
accessing an authorized connection list; 

determining whether the connection is identified in the authorized connection list; and 
if the connection is not identified in the authorized connection list: 

accessing sensitive file information which identifies at least one multiple sensitive 
files stored on the computing device, wherein the sensitive files [[is]] are 
not identified until after the connection has been identified as not being in 
the authorized connection list; and 
preventing access to all of the at least one sensitive files identified by the sensitive 
file information by performing an access prevention task after the 
connection is not identified in the authorized connection list, wherein the 
at least one sensitive files continue[[s]] to be stored on the computing 
device but all of the at least one sensitive files cannot be accessed when 
access is being prevented. 

2. (Currently Amended) The method of claim 1, wherein if the connection is not identified 
in the authorized connection list the method further comprises: 

detecting termination of the connection; and 

if the computing device does not have any other unauthorized connections, restoring 

access to the at least one sensitive files identified by the sensitive file information. 
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3. (Original) The method of claim 1, wherein the connection occurs via a computer network. 

4. (Original) The method of claim 3, wherein the network is a wireless network, and 
wherein the computing device is a mobile computing device. 

5. (Original) The method of claim 1, wherein the connection is a direct connection. 

6. (Currently Amended) The method of claim 1, wherein the access prevention task 
comprises locking the at least one sensitive files. 

7. (Currently Amended) The method of claim 1 , wherein the access prevention task 
comprises encrypting the at least one sensitive files. 

8. (Currently Amended) The method of claim 1, wherein the computing device comprises a 
storage device, and wherein the access prevention task comprises moving the at least one 
sensitive files to a host-protected area of the storage device. 

9. (Currently Amended) The method of claim 1, wherein the sensitive file information is a 
reference to a directory in which the at least one of the sensitive files is stored. 

10. (Currently Amended) The method of claim 1, wherein the sensitive file information is a 
list of the at least one sensitive files. 

11. (Original) The method of claim 1, wherein the authorized connection list comprises a list 
of at least one authorized network. 

12. (Original) The method of claim 1, wherein the authorized connection list comprises a list 
of at least one authorized connection type. 
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13. (Currently Amended) In an administrative system which distributes software to a plurality 
of computing devices on an enterprise network, a method comprising: 

providing a security agent, wherein after installation on a computing device the security 
agent is configured to: 

detect a connection of the computing device to an electronic device; 
access an authorized connection list; 

determine whether the connection is identified in the authorized connection list; 
and 

if the connection is not identified in the authorized connection list: 

access sensitive file information which identifies at least one multiple 
sensitive files stored on the computing device, wherein the 
sensitive files [[is]] are not identified until after the connection has 
been identified as not being in the authorized connection list; and 
prevent access to all of the at least one sensitive files identified by the 

sensitive file information by performing an access prevention task 
after the connection is not identified in the authorized connection 
list, wherein the at least one sensitive files continue[[s]] to be 
stored on the computing device but all of the at least one sensitive 
files cannot be accessed when access is being prevented; and 
transmitting the security agent to the plurality of computing devices via the enterprise 
network. 

14. (Original) The method of claim 13, further comprising: 
providing the authorized connection list; 

providing the sensitive file information; and 

transmitting the authorized connection list and the sensitive file information to the 
plurality of computing devices via the enterprise network. 
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15. (Currently Amended) A computing device that is configured for protecting sensitive files 
from unauthorized access, comprising: 
a processor; 

memory in electronic communication with the processor; and 
instructions stored in the memory, the instructions being executable to: 

detect a connection of the computing device to an electronic device; 

access an authorized connection list; 

determine whether the connection is identified in the authorized connection list; 
and 

if the connection is not identified in the authorized connection list: 

access sensitive file information which identifies at least one multiple 
sensitive files stored on the computing device, wherein the 
sensitive file s are [[is]] not identified until after the connection has 
been identified as not being in the authorized connection list; and 
prevent access to all of the at least one sensitive files identified by the 

sensitive file information by performing an access prevention task 
after the connection is not identified in the authorized connection 
list, wherein the at least one sensitive files continue[[s]] to be 
stored on the computing device but all of the at least one sensitive 
files cannot be accessed when access is being prevented. 



16. (Currently Amended) The computing device of claim 15, wherein if the connection is not 
identified in the authorized connection list the instructions are further executable to: 
detect termination of the connection; and 

if the computing device does not have any other unauthorized connections, restore access 
to the at least one sensitive files identified by the sensitive file information. 
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17. (Currently Amended) The computing device of claim 15, wherein the access prevention 
task comprises at least one of locking the at least one sensitive files, encrypting the at least one 
sensitive files, and moving the at least one sensitive files to a host-protected area of a storage 
device. 

18. (Currently Amended) A non-transitory computer-readable medium for storing program 
data, wherein the program data comprises executable instructions, the executable instructions 
being executable to: 

detect a connection of a computing device to an electronic device; 
access an authorized connection list; 

determine whether the connection is identified in the authorized connection list; and 
if the connection is not identified in the authorized connection list: 

access sensitive file information which identifies at least one multiple sensitive 
files stored on the computing device, wherein the sensitive file s are [[is]] 
not identified until after the connection has been identified as not being in 
the authorized connection list; and 
prevent access to all of the at least one sensitive files identified by the sensitive 
file information by performing an access prevention task after the 
connection is not identified in the authorized connection list, wherein the 
at least one sensitive files continue[[s]] to be stored on the computing 
device but all of the at least one sensitive files cannot be accessed when 
access is being prevented. 

19. (Currently Amended) The non-transitory computer-readable medium of claim 18, 
wherein if the connection is not identified in the authorized connection list the executable 
instructions are further executable to: 

detect termination of the connection; and 
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if the computing device does not have any other unauthorized connections, restore access 
to the at least one sensitive files identified by the sensitive file information. 

20. (Currently Amended) The non-transitory computer-readable medium of claim 18, 
wherein the access prevention task comprises at least one of locking the at least one sensitive 
files, encrypting the at least one sensitive files, and moving the at least one sensitive files to a 
host-protected area of a storage device. 
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